Merge pull request #12791 from Security-Onion-Solutions/2.4/detectiondefaults

Fix fingerprint paths
2025-12-06 09:12:45 +01:00 · 2024-04-12 09:01:38 -04:00
parent 1250a728ac 49ccd86c39
commit 5b81a73e58
1 changed files with 3 additions and 3 deletions
--- a/salt/soc/defaults.yaml
+++ b/salt/soc/defaults.yaml
@@ -1258,7 +1258,7 @@ soc:
          elastAlertRulesFolder: /opt/sensoroni/elastalert
          reposFolder: /opt/sensoroni/sigma/repos
          rulesFingerprintFile: /opt/sensoroni/fingerprints/sigma.fingerprint
-          stateFilePath: /opt/so/conf/soc/fingerprints/elastalertengine.state
+          stateFilePath: /opt/sensoroni/fingerprints/elastalertengine.state
          rulesRepos:
          - repo: https://github.com/Security-Onion-Solutions/securityonion-resources
            license: Elastic-2.0
@@ -1319,7 +1319,7 @@ soc:
          - repo: https://github.com/Security-Onion-Solutions/securityonion-yara
            license: DRL
          yaraRulesFolder: /opt/sensoroni/yara/rules
-          stateFilePath: /opt/so/conf/soc/fingerprints/strelkaengine.state
+          stateFilePath: /opt/sensoroni/fingerprints/strelkaengine.state
        suricataengine:
          allowRegex: ''
          autoUpdateEnabled: true
@@ -1327,7 +1327,7 @@ soc:
          communityRulesFile: /nsm/rules/suricata/emerging-all.rules
          denyRegex: ''
          rulesFingerprintFile: /opt/sensoroni/fingerprints/emerging-all.fingerprint
-          stateFilePath: /opt/so/conf/soc/fingerprints/suricataengine.state
+          stateFilePath: /opt/sensoroni/fingerprints/suricataengine.state
      client:
        enableReverseLookup: false
        docsUrl: /docs/